Upload
others
View
15
Download
0
Embed Size (px)
Citation preview
Cisco Catalyst 9400 Series
Supervisor Engine-1 Datasheet
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 1
CONTENT
Overview .......................................................................................................................................................................... 2
Product highlights............................................................................................................................................................ 3
Supervisor Engine-1 Details ............................................................................................................................................ 5
Sd-Access Architecture .................................................................................................................................................... 7
Platform benefits ............................................................................................................................................................. 8
Packaging ....................................................................................................................................................................... 13
Licensing Combinations................................................................................................................................................. 14
Dimensions, Weight, Acoustic, Mean Time Between Failures .................................................................................... 17
Management and Standards Support .......................................................................................................................... 18
Power Consumption Of Supervisor Engine-1 ............................................................................................................... 22
Safety and Compliance .................................................................................................................................................. 22
Cisco Enhanced Limited Lifetime Hardware Warranty ................................................................................................ 23
Cisco Services For Next-Generation Cisco Catalyst Switches ...................................................................................... 24
Software Policy For Cisco Catalyst 9400 Series Switches ............................................................................................ 25
Ordering Information .................................................................................................................................................... 25
Source ............................................................................................................................................................................ 27
Contact Us
Tel: +1-626-239-8066 (USA) +852-3050-1066 / +852-3174-6166
Fax: +852-3050-1066 (Hong Kong)
Email: [email protected] (Sales Inquiries)
[email protected] (CCIE Technical Support)
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 2
Overview
Advanced persistent security threats, the exponential growth of the Internet of Things (IoT) devices,
mobility everywhere and cloud adoption require a network fabric that integrates advanced hardware
and software innovations to automate, secure, and simplify customer networks. The goal of this
network fabric is to enable customer revenue growth by accelerating business service rollout.
The Cisco® Digital Network Architecture (Cisco DNA™) with Software-Defined Access (SD-Access) is the
most advanced network fabric to power customer business. Cisco DNA is an open and extensible,
software-driven architecture that accelerates and simplifies your enterprise network operations. The
programmable architecture frees your IT staff from time consuming, repetitive network configuration
tasks so they can focus instead on innovation that positively transforms your business.
SD-Access enables policy-based automation from edge to cloud with foundational capabilities that
include:
● Simplified device deployment
● Unified management of wired and wireless networks
● Network virtualization and segmentation
● Group-based policies
● Context-based analytics
The Cisco Catalyst 9400 Series is Cisco’s lead modular enterprise switching access platform, built for
security, IoT, and cloud. These switches form the foundational building blocks for SD-Access, Cisco’s
leading enterprise architecture. The platform provides strong investment protection, with a chassis
architecture that is capable of supporting up to 9 Tbps of system bandwidth and industry-leading power
delivery for high-density IEEE 802.3BT (60W PoE). Redundancy is now available across the portfolio.
The Cisco Catalyst 9400 Series delivers state-of-the-art High Availability (HA) with capabilities such as
Non-Stop Forwarding and Stateful Switchover (NSF/SSO), uplink resiliency, and N+1/N+N redundancy
for power supplies. The platform is enterprise optimized with an innovative dual-serviceable fan tray
design and side-to-side airflow and is closet-friendly with ~16” depth. A single system can scale up to
384 access ports with your choice of 1 Gigabit Ethernet copper, 1 Gigabit Ethernet Fiber, Cisco Universal
Power over Ethernet (Cisco UPOE®), and Power over Ethernet Plus (PoE+) options. The platform also
supports advanced routing and infrastructure services, SD-Access capabilities, and network system
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 3
virtualization. These features enable optional placement of the platform in the core and aggregation
layers of small to medium-sized campus environments.
Cisco ONE Software
Cisco ONE™ Software offers a valuable and flexible way to buy software for the access, WAN, and data
center domains. At each stage in the product lifecycle, Cisco ONE Software helps make buying,
managing, and upgrading your network and infrastructure software easier.
Cisco ONE Software provides:
● Flexible licensing models to smoothly distribute customers’ software spending over time
● Investment protection for software purchases through software services–enabled license portability
© 2018 Cisco and/or its affiliates.
● Access to updates, upgrades, and new technology from Cisco through Cisco Software Support Service
(SWSS)
● Lower cost of entry with the new Cisco ONE Subscription for Switching model
Cisco ONE for Access lets you manage your entire switching structure as a single, converged component.
With one management system and one policy for wired and wireless networks, it offers an efficient
way to provide more secure access.
Product highlights
● The Cisco Unified Access Data Plane (UADP) 2.0 ASIC is ready for next-generation technologies with
its programmable pipeline, microengine capabilities, and template-based configurable allocation of
Layer 2, Layer 3, forwarding, Access Control List (ACL), and Quality of Service (QoS) entries
● Intel 2.4-GHz x86 with up to 960 GB of SATA SSD local storage for container-based application hosting
● Up to 1.44 Tbps wired switching capacity (IPv4) with 900 Mpps of throughput
● Up to two nonblocking 40 Gigabit Ethernet uplinks (Quad Small Form-Factor Pluggable [QSFP]) and
up to eight nonblocking 10 Gigabit Ethernet uplinks (SFP+)
● SFP support on uplinks to offer flexibility for up to eight Gigabit Ethernet ports
● 384 ports of nonblocking 10/100/1000 RJ-45 ports
● Cisco UPOE (60W)/PoE+ (30W) capabilities on 384 ports simultaneously
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 4
● Line rate hardware-based Flexible NetFlow (FNF) delivering flow collection up to 384,000 flows
● IPv6 support in hardware, providing wire rate forwarding for IPv6 networks
● Dual-stack support for IPv4 and IPv6 and dynamic hardware forwarding table allocations for ease of
IPv4- to-IPv6 migration
● Scalable routing (IPv4, IPv6, and multicast) tables and Layer 2 tables
● Open Cisco IOS® XE: This modern operating system for the enterprise provides support for model-
driven programmability, on-box Python scripting, streaming telemetry, container-based application
hosting and patching for critical bug fixes. The OS also has built-in defenses to protect against runtime
attacks
● SD-Access: The Cisco Catalyst 9400 Series Switches form the foundation building block for SD-Access
– Cisco’s leading enterprise architecture, which includes:
◦ Policy-based automation from edge to cloud
◦ Segmentation and micro-segmentation made easy, with having predictable performance and
scalability
◦ Automation through Cisco DNA Center™
◦ Policy through the Cisco Identity Services Engine (ISE)
◦ Network assurance through Network Data Platform
◦ The ability to launch new business services faster and improve issue resolution time significantly
● Plug and Play (PnP) enabled: A simple, secure, unified, and integrated offering eases new branch or
campus device rollouts and can also be used for providing updates to an existing network
● Advanced security
● AES-256 support with the powerful MACsec-256 encryption algorithm is available in hardware ©
2018 Cisco and/or its affiliates.
● Trustworthy systems: Secure Unique Device Identification (SUDI) support for PnP tamper-proof
device identity capability secures zero-touch provisioning by allowing your device to show a certificate
to the server to be able to get onto your network
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 5
Supervisor Engine-1 Details
Figure 1. Supervisor Engine-1 details
Table 1. Cisco Catalyst 9400 chassis slot: Assignment options
Chassis
Single Supervisor
Engine-1 slot
assignments
Redundant
Supervisor Engine-1
slot assignments
Line card
slot
options
Supervisor Engine-
1 minimum
software
Cisco Catalyst
C9407R Slots 3 or 4 Slots 3 or 4
Slots 1, 2,
and 5 to 7
Open Cisco IOS XE
16.6.1
Cisco Catalyst
C9410R Slots 5 or 6 Slots 5 or 6
Slots 1 to 4,
and 7 to 10
Open Cisco IOS XE
16.6.1
Table 2. Cisco Catalyst 9400 Supervisor Engine-1 bandwidth per slot for different chassis
Supervisor Cisco Catalyst C9407R chassis Cisco Catalyst 9410R chassis
Supervisor Engine-1 80 Gbps per slot 80 Gbps per slot
Table 3. Cisco Catalyst 9400 Supervisor Engine-1 line card and module support
Line card Description Minimum software
C9400-LC-48U Cisco Catalyst 9400 Series 48-Port UPOE 10/100/1000 (RJ-45) Cisco IOS XE 16.6.1
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 6
Line card Description Minimum software
C9400-LC-48T Cisco Catalyst 9400 Series 48-Port 10/100/1000 (RJ-45) Cisco IOS XE 16.6.1
C9400-LC-48UX Cisco Catalyst 9400 Series 48-Port UPOE w/ 24p mGig 24p RJ-45 Cisco IOS XE 16.6.2
C9400-LC-24XS Cisco Catalyst 9400 Series 24-Port 10 Gigabit Ethernet (SFP+) Cisco IOS XE 16.6.2
C9400-LC-48P Cisco Catalyst 9400 Series 48-Port POE+ 10/100/1000 (RJ-45) Cisco IOS-XE 16.8.1
C9400-LC-24S Cisco Catalyst 9400 Series 24-Port Gigabit Ethernet(SFP) Cisco IOS-XE 16.8.1
C9400-LC-48S Cisco Catalyst 9400 Series 48-Port Gigabit Ethernet(SFP) Cisco IOS-XE 16.8.1
Predictable performance and scalability
Table 4. Cisco Catalyst 9400 Supervisor Engine-1 performance and scalability features
Features Performance and scalability
Centralized wired capacity Up to 1.44 Tbps
Per-slot switching Capacity 80 Gbps
Total number of MAC addresses Up to 64,000
Total number of IPv4 routes (ARP plus learned routes) Up to 112,0001
FNF entries (v4/v6) Up to 384,000/192,000
DRAM 16 GB
Flash 10 GB
VLAN IDs 4096
SSD capacity 960 GB
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 7
Features Performance and scalability
Total Switched Virtual Interfaces (SVIs) 4,000
Jumbo frame 9198 bytes
Forwarding rate ● 900 Mpps for IPv4
● 450 Mpps for IPv6
IPv4 routing entries Up to 112,0001
IPv6 routing entries Up to 56,0002
Multicast routes Up to 16,000
QoS hardware entries Up to 18,000
Security ACL hardware entries Up to 18,000
Packet buffer 96 MB
1 48,000 direct + 64,000 indirect
2 24,000 direct + 32,000 indirect
Sd-Access Architecture
What if you could give time back to IT? Provide network access in minutes for any user or device to any
application – without compromise? SD-Access is the industry’s first policy-based automation from
network edge to cloud and the foundation for your digital network. Built on the principles of Cisco DNA,
SD-Access provides end-to-end segmentation to keep user, device, and application traffic separate
without a redesign of the network. It automates user access policy so you can make sure the right
policies are set for any user or device with any application across the network. This is accomplished
with a single network fabric across LAN and WLAN, which creates a consistent user experience
anywhere without compromising on security.
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 8
There are many challenges today in managing the network to drive business outcomes. These
limitations are due to manual configuration and fragmented tool offerings.
SD-Access provides:
● A transformational management solution that reduces operational expenses and enhances business
agility
● Consistent management of wired and wireless network provisioning and policy
● Automated network segmentation and group-based policy
● Contextual insights for fast issue resolution and capacity planning
● Open and programmable interfaces for integration with third-party solutions
Platform benefits
Open Cisco IOS XE opens a completely new paradigm in network configuration, operation and
monitoring through network automation. Cisco’s automation solution is open, standards-based and
extensible across the entire lifecycle of a network device. Various mechanisms employed to bring about
the ease of network automation are outlined below based.
● Automated device provisioning: This is the ability to automate the process of upgrading software
images and installing configuration files on Cisco Catalyst switches when they are being deployed in the
network for the first time. Cisco provides both turnkey solutions like Plug and Play along with off-the-
shelf tools like Zero Touch Provisioning and Pre-boot Execution Environment (PXE) that enable an
effortless and automated deployment.
● API-driven configuration: A modern network switch like the Cisco Catalyst 9400 Series supports a
wide range of automation features and provides robust open APIs over Network Configuration Protocol
(NETCONF) and RESTconf using YANG data models for external tools, both off-the-shelf and custom-
built, so you can automatically provision network resources.
● Granular visibility: Model-driven telemetry provides a mechanism to stream data from a switch to a
destination. The data to be streamed is driven through subscription of a data set in a YANG model. The
subscribed data set is streamed to the destination at a configured interval. Additionally, open Cisco IOS
XE enables the push model, which provides near real-time monitoring of the network leading to quick
detection and rectification of failure situations.
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 9
Security
● Encrypted Traffic Analytics (ETA): ETA is a unique capability for identifying malware in encrypted
traffic from the access layer. Since more and more traffic is becoming encrypted, the visibility this
feature affords for threat detection is critical for keeping your networks secure at different layers.
Additionally, ETA is able detect vulnerable implementations in encrypted traffic.
● Advanced Encryption Standard (AES)-256 MACsec encryption: AES is the IEEE 802.1AE standard for
authenticating and encrypting packets between switches and endpoints. Catalyst 9400 switches
Hardware capable 256-bit and 128-bit AES on all ports at all speeds providing the most secure link
encryption.
● Trustworthy systems: Cisco Trust Anchor Technologies provide a highly secure foundation for Cisco
products. With the Cisco Catalyst 9400 Series, Trust Anchor Technologies enable hardware and
software authenticity assurance for supply chain trust and strong mitigation against man-in-the-middle
compromise of software and firmware.
Trust Anchor capabilities include:
◦ Image signing: Cryptographically signed images provide assurance that the firmware, BIOS, and other
software are authentic and unmodified. As the system boots, the system’s software signatures are
checked for integrity.
◦ Secure Boot: Secure Boot anchors the boot sequence chain of trust to immutable hardware, mitigating
threats against a system’s foundational state and the software that is to be loaded, regardless of a
user’s privilege level. It provides layered protection against the persistence of illicitly modified firmware.
◦ Cisco Trust Anchor module: This tamper-resistant, strong-cryptographic, single-chip solution provides
hardware authenticity assurance to uniquely identify the product so that its origin can be confirmed to
Cisco, providing assurance that the product is genuine.
Resiliency and high availability
The Cisco Catalyst 9400 Series is designed for excellent nonstop communications with noninterrupted
hardware switching. With Cisco Open IOS-XE Software, you can continue to reap the benefit of this
best-in-class resiliency in various ways.
● Cross-Stack EtherChannel provides the ability to configure Cisco EtherChannel technology across
different members of the stack for high resiliency.
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 10
● IEEE 802.1s Multiple Spanning Tree Protocol (MSTP) provides rapid spanning tree convergence
independent of spanning tree timers and also offers the benefit of Layer 2 load balancing and
distributed processing.
● Per-VLAN Rapid Spanning Tree Plus (PVRST+) allows rapid spanning tree (IEEE 802.1w) reconvergence
on a per-VLAN spanning tree basis, providing simpler configuration than MSTP. In both MSTP and
PVRST+ modes, stacked units behave as a single spanning tree node.
● Switch port autorecovery (“err-disable” recovery) automatically attempts to reactivate a link that is
disabled because of a network error.
● NSF/SSO offers continuous packet forwarding during supervisor-engine switchover. Information is
fully synchronized between supervisor engines to allow the standby supervisor engine to immediately
take over in subsecond time if the primary engine fails.
● NSF/SSO dramatically improves the network reliability and availability in a Layer 2 or Layer 3
environment. NSF/SSO is essential for business-critical applications such as Voice over IP (VoIP). These
features help ensure that VoIP calls are not dropped.
● In addition to redundant power supplies and fans, the Cisco Catalyst C9407R and C9410R chassis
models support 1+1 supervisor-engine redundancy, using the Supervisor Engine-1. The primary
supervisor engine is active and is responsible for normal system operation. The secondary supervisor
engine serves as a standby, monitoring the operation of the primary supervisor engine. The resiliency
features of the Cisco Catalyst 9400 Series prevent network outages that could result in lost business
and revenue.
● Apart from the features previously mentioned, Supervisor Engine-1 has resiliency built into its uplinks.
Table 5. Cisco Catalyst 9400 Supervisor Engine-1 uplink options
Supervisor configuration Uplink ports options
Single supervisor 8 x 10 Gigabit Ethernet ports are active (2 x 40 Gigabit Ethernet ports are
disabled)
2 x 40 Gigabit Ethernet ports are active (8 x 10 Gigabit Ethernet ports are
disabled)
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 11
Supervisor configuration Uplink ports options
4 x 10 Gigabit Ethernet and 1 x 40 Gigabit Ethernet ports are active (the
other 4 x 10 Gigabit Ethernet and 1 x 40 Gigabit Ethernet ports are
disabled)
Dual supervisors Active supervisor: 4 x 10 Gigabit Ethernet ports are active (the other 4 x
10 Gigabit Ethernet ports are disabled); standby supervisor: 4 x 10
Gigabit Ethernet ports (the other 4 x10 Gigabit Ethernet ports are
disabled)
Active supervisor: 1 x 40 Gigabit Ethernet port is active (the other 1 x 40
Gigabit Ethernet port is disabled); standby supervisor: 1 x 40 Gigabit
Ethernet port (the other 1 x 40 Gigabit Ethernet port is disabled)
Flexible NetFlow
● Flexible NetFlow (FNF): Cisco IOS Software FNF is the next generation in flow visibility technology,
allowing optimization of the network infrastructure, reducing operational costs, and improving capacity
planning and security incident detection with increased flexibility and scalability. The supervisor is
capable of up to 384,000 flow entries.
Application Visibility and Control
● Advanced analytics: Superior FNF reports application performance and activities within the network
to any supported NetFlow collector, such as Cisco Stealthwatch® or any compliant third-party tool.
QoS
● Superior QoS: The Cisco Catalyst 9400 Series offers Gigabit Ethernet speeds with intelligent services
that keep traffic flowing smoothly, even at 10 times the normal network speed. Industry-leading
mechanisms for cross-stack marking, classification, and scheduling deliver superior performance for
data, voice, and video traffic at wire speed. This includes granular wireless bandwidth management and
fair sharing, 802.1p Class of Service (CoS) and Differentiated Services Code Point (DSCP) field
classification, Shaped Round Robin (SRR) scheduling, Committed Information Rate (CIR), and eight
egress queues per port.
Service discovery
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 12
● Constrained Application Protocol (CoAP) is an Internet application protocol that enables constrained
devices (such as IoT devices with limited processing and storage like smart lights and IP phones) to
communicate efficiently with each other and also with the Internet through translation to HTTP. The
simple and lean protocol also has multicast support, an important aspect in IoT management.
● Multicast DNS (mDNS) gateway. This service discovery gateway capability facilitates the sharing of
services advertised using the Apple mDNS (Bonjour) protocol (such as printers, Apple TVs, and file
services across the network). Additionally, the administrator can create policies defining which services
can be seen and accessed by the users in the network. This facilitates a Bring Your Own Device (BYOD)
rollout.
Smart operation
● Bluetooth enabled: The Cisco Catalyst 9400 Series has the hardware support to connect a Bluetooth
dongle to your switch to use this wireless interface as a Management port. This port functions as an IP
management interface and can be used to configure and troubleshoot using the WebUI, CLI, and
transfer images and configurations.
● WebUI: WebUI is an embedded GUI-based device-management tool that provides the ability to
provision the device, to simplify device deployment and manageability, and to enhance the user
experience. WebUI comes with the default image. There is no need to enable anything or install any
license on the device. WebUI can be used by customers to build a configuration, monitor and
troubleshoot the device without having to know how to use the CLI.
● Efficient switch operation: Cisco Catalyst 9400 Series switches provide optimum power savings with
Energy Efficient Ethernet (EEE) on the RJ-45 ports and low power operations for industry best-in-class
power management and power consumption capabilities. The ports are capable of reduced power
modes so that ports not in use can move into a lower power utilization state.
Other efficient switch operation features are:
◦ The per-port power consumption command allows you to specify maximum power setting on an
individual port.
◦ Per-port PoE power sensing measures the actual power being drawn, enabling more intelligent control
of powered devices. The PoE MIB provides proactive visibility into power usage and lets you set
different power level thresholds.
● RFID tags: Cisco Catalyst 9400 Series Switches have an embedded RFID tag which facilitates easy asset
and inventory management using commercial RFID readers.
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 13
● Blue Beacon: Cisco Catalyst 9400 Series Switches support a blue beacon LED which allows easy
identification of the switch being accessed.
High-performance IP routing
The Cisco Express Forwarding hardware routing architecture delivers extremely high-performance IP
routing in the Cisco Catalyst 9400 Series Switches, based on these features:
● IP unicast routing protocols (static, Routing Information Protocol Version 1 [RIPv1], RIPv2, RIPng, and
Open Shortest Path First [OSPF] Routed Access) are supported for small network routing applications
with the Network Essentials stack. Equal-cost routing facilitates Layer 3 load balancing and redundancy
across the stack.
● Advanced IP unicast routing protocols (Full OSPF, Enhanced Interior Gateway Routing Protocol
[EIGRP], Border Gateway Protocol Version 4 [BGPv4], and Intermediate System-to-Intermediate System
Version 4 [IS-ISv4]) are supported for load balancing and constructing scalable LANs. IPv6 routing using
OSPFv3 and EIGRPv6 is supported in hardware for maximum performance.
● Protocol-Independent Multicast (PIM) for IP multicast routing is supported, including PIM Sparse
Mode (PIM SM), and Source-Specific Multicast (SSM).
● IPv6 addressing is supported on interfaces with appropriate show commands for monitoring and
troubleshooting.
Power over Ethernet leadership
Cisco UPOE: PoE removes the need for wall power to each PoE-enabled device and eliminates the cost
for additional electrical cabling and circuits that would otherwise be necessary in IP phone and WLAN
deployments. Cisco UPOE extends the IEEE PoE+ standard to double the power per port to 60 watts.
This facilitates delivery of network power to a broad range of devices requiring higher power. These
devices include virtual desktop terminals, IP turrets, compact switches, building management gateways,
LED lights, wireless access points and IP phones. The Cisco Catalyst 9400 Series supports Cisco UPOE,
PoE+, and PoE, thereby addressing the largest range of network power needs.
Packaging
The Cisco Catalyst 9400 family of switches introduces a new and simplified licensing package in the
form of base and add-on licenses.
● The base licensing package includes the Network Essentials and Network Advantage licensing options
that are tied to the hardware. Between them, the base licensing packages cover switching
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 14
fundamentals, management automation, troubleshooting, and advanced switching features. These
base licenses are perpetual.
● The add-on licensing package includes the Cisco DNA Essentials and Cisco DNA Advantage options.
In addition to on-box capabilities, the features available with this package provide Cisco innovations on
the switch, as well as on Cisco DNA Center, in the APIC-EM. The DNA add-on licenses are available as a
subscription.
License consumption is easily determined by the package itself. While base licenses are always
permanent and without an expiration date, add-on licenses have to be purchased for a 3-, 5-, or 7-year
term (and hence are also known as term-based licenses).
Licensing Combinations
Table 6. Licensing combinations
Cisco DNA Essentials Cisco DNA Advantage
Network Essentials Yes No
Network Advantage No* Yes
* At the time of DNA license renewal, the DNA Essentials license can be purchased to be used with Network Advantage.
Managing licenses with Smart Accounts: Creating Smart Accounts by using Cisco Smart Software
Manager (SSM) enables you to order devices and licensing packages and also manage your software
licenses from a centralized website. You can set up Cisco SSM to provide daily email alerts and to notify
you of expiring add-on licenses that you want to renew. You must order an add-on license in order to
purchase a switch. When the license term expires, you can either renew the add-on license to continue
using it or deactivate the add-on license and then reload the switch to continue operating with the base
license capabilities. Both the base and add-on licenses are also available for a 90-day evaluation period.
An evaluation license is activated temporarily, without purchase. An expired evaluation license cannot
be reactivated after reload.
Note: You are not required to deploy Cisco DNA Center, just to use one of the add-on software packages.
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 15
Table 7. Network Essentials and Advantage Package Features
Features Network
Essentials
Network
Advantage
Switch fundamentals
Layer 2, Routed Access (RIP, EIGRP Stub, OSPF - 1000 routes),PBR, PIM
Stub Multicast (1000 routes)), PVLAN, VRRP, PBR, CDP, QoS, FHS,
802.1x, Macsec-128, CoPP, SXP, IP SLA Responder, SSO
✓ ✓
Advanced switch capabilities and scale
BGP, EIGRP, HSRP, IS-IS, BSR, MSDP, PIM-BIDIR, IP SLA, OSPF
✗ ✓
Network segmentation
VRF, VXLAN, LISP, SGT, MPLS, mVPN
✗ ✓
Automation
Netconf, Restconf, gRPC, YANG, PnP Agent, ZTP/Open PnP, GuestShell
(On-Box Python)
✓ ✓
Telemetry and visibility
Model-driven telemetry, sampled NetFlow, SPAN, RSPAN
✓ ✓
High availability and resiliency
NSF, GIR
✗ ✓
IOT integrationCoAP ✗ ✓
Security
MACsec-256
✗ ✓
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 16
Table 8. DNA Essentials and Advantage Package Features
Features Cisco DNA
Essentials
Cisco DNA
Advantage
Cisco ONE
Advantage
Switch Features
Optimized network deployments
DNA Service for Bonjour
✗ ✓ ✓
Advanced telemetry and visibility
Full Flexible NetFlow, EEM
✓ ✓ ✓
Optimized telemetry a visibility
ERSPAN, AVC (NBAR2), App Hosting (in Containers/VMs),
Wireshark
✗ ✓ ✓
Advanced security
Encrypted Traffic Analytics (ETA)
✗ ✓ ✓
Cisco DNA Center Features
Day 0 network bring-up automation
Cisco Network Plug-n-Play application, network settings,
device credentials, LAN Automation, Host onboarding
✓ ✓ ✓
Element management
Discovery, inventory, topology, software image,
licensing, and configuration management
✓ ✓ ✓
Element management
Patch Management
✗ ✓ ✓
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 17
Features Cisco DNA
Essentials
Cisco DNA
Advantage
Cisco ONE
Advantage
Basic Assurance
Health Dashboards – Network, Client, Application;
Switch & Wired Client Health Monitoring
✓ ✓ ✓
SD-Access
Policy-based Automation & Assurance for Wired &
Wireless
✗ ✓ ✓
Network assurance and analytics
Global Insights, Trends, Compliance, Custom Reports;
Switch 360, Wired Client 360; Fabric and Non-Fabric
Insights; App Health, App 360, App Performance (Loss,
Latency, Jitter)
✗ ✓ ✓
Dimensions, Weight, Acoustic, Mean Time Between Failures
Table 9. Dimensions, weight, acoustic, and MTBF details
Physical specifications (H x W x D): 1.6 x 14.92 x 14.57 in. (4.06 x 37.90 x 37.00 cm)
Weight: 10 lb (4.5 kg)
Operating temperature Normal operating* temperature and altitudes:
● 27° to 109°F (-5° to +45°C), up to 6000 feet (1800 m)
● 27° to 104°F (-5° to +40°C), up to 10,000 feet (3000 m)
● *Minimum ambient temperature for cold startup is 0°C
Short-term** exceptional conditions:
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 18
● 27° to 119°F (-5° to +55°C), up to 6000 feet (1800 m)
● 27° to 114°F (-5° to +50°C), up to 10,000 feet (3000 m)
● **Not more than following in one-year period: 96 consecutive hours,
or 360 hours total, or 15 occurrences
Storage temperature 40° to 158°F (-40° to 70°C)
Relative humidity operating and
nonoperating noncondensing
10 to 95 percent, noncondensing
Altitude -60 to 3000m
MTBF 302,000 hours
Management and Standards Support
Table 10. Management and standards support for the Cisco Catalyst 9400 Series
Description Specifications
Management
BGP4-MIB
BRIDGE-MIB
CISCO-ACCESS-ENVMON-MIB
CISCO-AUTH-FRAMEWORK-MIB
CISCO-BRIDGE-EXT-MIB
CISCO-BULK-FILE-MIB
CISCO-CABLE-DIAG-MIB
CISCO-CALLHOME-MIB
CISCO-RESILIENT-ETHERNET-PROTOCOL-
MIB
CISCO-RF-MIB
CISCO-RMON-CONFIG-MIB
CISCO-RMON-MIB
CISCO-RMON2-MIB
CISCO-RTP-METRICS-MIB
CISCO-RTTMON-ICMP-MIB
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 19
Description Specifications
CISCO-CDP-MIB
CISCO-CEF-MIB
CISCO-CLASS-BASED-QOS-MIB
CISCO-CONFIG-COPY-MIB
CISCO-CONFIG-MAN-MIB
CISCO-DATA-COLLECTION-MIB
CISCO-DHCP-SNOOPING-MIB
CISCO-DYNAMIC-ARP-INSPECTION-MIB
CISCO-EMBEDDED-EVENT-MGR-MIB
CISCO-ENERGYWISE-MIB
CISCO-ENHANCED-IMAGE-MIB
CISCO-ENHANCED-MEMPOOL-MIB
CISCO-ENTITY-ASSET-MIB
CISCO-ENTITY-DIAG-MIB
CISCO-ENTITY-EXT-MIB
CISCO-ENTITY-FRU-CONTROL-MIB
CISCO-ENTITY-PERFORMANCE-MIB
CISCO-ENTITY-QFP-MIB
CISCO-ENTITY-SENSOR-MIB
CISCO-ENTITY-VENDORTYPE-OID-MIB
CISCO-ENVMON-MIB
CISCO-RTTMON-RTP-MIB
CISCO-SMART-LIC-MIB
CISCO-SNMP-TARGET-EXT-MIB
CISCO-STACKMAKER-MIB
CISCO-SYSLOG-MIB
CISCO-TAP2-MIB
CISCO-TCP-MIB
CISCO-USER-CONNECTION-TAP-MIB
CISCO-VLAN-IFTABLE-RELATIONSHIP-MIB
CISCO-VLAN-MEMBERSHIP-MIB
CISCO-VOIP-TAP-MIB
CISCO-VTP-MIB
DIFFSERV-MIB
DISMAN-EXPRESSION-MIB
ENTITY-MIB
ENTITY-STATE-MIB
ENTITY-VENDORTYPE-OID-MIB
ETHERLIKE-MIB
EVENT-MIB
HC-ALARM-MIB
HC-RMON-MIB
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 20
Description Specifications
CISCO-ERR-DISABLE-MIB
CISCO-ETHERLIKE-EXT-MIB
CISCO-FLASH-MIB
CISCO-FLOW-MONITOR-MIB
CISCO-FTP-CLIENT-MIB
CISCO-HSRP-EXT-MIB
CISCO-HSRP-MIB
CISCO-IEEE8021-PAE-MIB
CISCO-IEEE8023-LAG-MIB
CISCO-IETF-BFD-MIB
CISCO-IETF-DHCP-SERVER-MIB
CISCO-IETF-FRR-MIB
CISCO-IETF-PW-MPLS-MIB
CISCO-IF-EXTENSION-MIB
CISCO-IF-MIB
CISCO-IGMP-FILTER-MIB
CISCO-IMAGE-LICENSE-MGMT-MIB
CISCO-IMAGE-MIB
CISCO-IP-CBR-METRICS-MIB
CISCO-IP-SEC-MIB
CISCO-IP-URPF-MIB
IP-FORWARD-MIB
IP-MIB
IPMROUTE-STD-MIB
LLDP-MED-MIB
LLDP-MIB
MAU-MIB
MPLS-LSR-STD-MIB
MPLS-TE-MIB
MPLS-VPN-MIB
MSDP-MIB
NHRP-MIB
NOTIFICATION-LOG-MIB
NTPv4-MIB
OLD-CISCO-CHASSIS-MIB
OLD-CISCO-CPU-MIB
OLD-CISCO-INTERFACES-MIB
OLD-CISCO-IP-MIB
OLD-CISCO-MEMORY-MIB
OLD-CISCO-SYSTEM-MIB
OLD-CISCO-TCP-MIB
OLD-CISCO-TS-MIB
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 21
Description Specifications
CISCO-IPMROUTE-MIB
CISCO-L2-CONTROL-MIB
CISCO-L2L3-INTERFACE-CONFIG-MIB
CISCO-LICENSE-MGMT-MIB
CISCO-LLDP-EXT-MED-MIB
CISCO-LOCAL-AUTH-USER-MIB
CISCO-MAC-AUTH-BYPASS-MIB
CISCO-MAC-NOTIFICATION-MIB
CISCO-MDI-METRICS-MIB
CISCO-MEDIA-METRICS-MIB
CISCO-MEMORY-POOL-MIB
CISCO-NBAR-PROTOCOL-DISCOVERY-MIB
CISCO-PAGP-MIB
CISCO-PIM-MIB
CISCO-PORT-SECURITY-MIB
CISCO-PORT-STORM-CONTROL-MIB
CISCO-POWER-ETHERNET-EXT-MIB
CISCO-PRIVATE-VLAN-MIB
CISCO-PROCESS-MIB
CISCO-PRODUCTS-MIB
OLD-MPLS-LSR-MIB
POWER-ETHERNET-MIB
RFC1213-MIB
RFC2668-MIB
RFC2982-MIB
SMON-MIB
SNMP-FRAMEWORK-MIB
SNMP-MPD-MIB
SNMP-NOTIFICATION-MIB
SNMP-TARGET-MIB
SNMPv2-MIB
SONET-MIB
TCP-MIB
UDP-MIB
VRRPV3-MIB
VTP-MIB
Standards Ethernet: IEEE 802.3
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 22
Description Specifications
10 Gigabit Ethernet: IEEE 802.3ae
IEEE 802.1D Spanning Tree Protocol
IEEE 802.1w Rapid Reconfiguration of Spanning
Tree
IEEE 802.1s Multiple VLAN Instances of Spanning
Tree
IEEE 802.3ad LACP
IEEE 802.1p CoS Prioritization
IEEE 802.1Q VLAN
IEEE 802.1X User Authentication
RMON I and II standards
SNMPv1, SNMPv2c, and SNMPv3
Power Consumption Of Supervisor Engine-1
Active supervisor power: Maximum power (700W). Standby supervisor power: Maximum power
(700W). This result is not indicative of the actual power draw during operation. It is the absolute
maximum value recommended for facility power, system configuration and cooling capacity planning.
Typical power draw is about 40%-75% maximum rated power value shown.
Safety and Compliance
Table 11. Safety and compliance information for the Cisco Catalyst 9400 Series
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 23
Description Specifications
Safety certifications
● UL 60950-1 ● CAN/CSA-C222.2 No. 60950-1
● EN 60950-1 ● IEC 60950-1
● AS/NZS 60950.1 ● IEEE 802.3
Electromagnetic emissions certifications
● 47 CFR Part 15 ● CISPR22 Class A
● EN 300 386 V1.6.1 ● EN 55022 Class A
● EN 55032 Class A ● CISPR 32 Class A
● EN61000-3-2 ● EN61000-3-3
● ICES-003 Class A ● TCVN 7189 Class A
● V-3 Class A ● CISPR24
● EN 300 386 ● EN55024
● TCVN 7317
Environmental Reduction of Hazardous Substances (ROHS) 5
Cisco Enhanced Limited Lifetime Hardware Warranty
The Cisco Catalyst 9400 Series Switches come with a Cisco Enhanced Limited Lifetime Warranty (E-LLW)
that includes Next-Business-Day (NBD) delivery of replacement hardware where available and 90 days
of 8x5 Cisco Technical Assistance Center (TAC) support. Your formal warranty statement, including the
warranty applicable to Cisco software, appears in the information packet that accompanies your Cisco
product. We encourage you to review the warranty statement shipped with your specific product
carefully before use. Cisco reserves the right to refund the purchase price as its exclusive warranty
remedy.
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 24
Table 12. E-LLW details
Devices covered Applies to Cisco Catalyst 9400 Series Switches.
Warranty duration As long as the original customer owns the product.
End-of-life policy In the event of discontinuance of product manufacture, Cisco warranty support is
limited to 5 years from the announcement of discontinuance.
Hardware replacement Cisco or its service center will use commercially reasonable efforts to ship a
replacement for NBD delivery, where available. Otherwise, a replacement will be
shipped within 10 working days after receipt of the Return Materials Authorization
(RMA) request. Actual delivery times might vary depending on customer location.
Effective date Hardware warranty commences from the date of shipment to customer (and in
case of resale by a Cisco reseller, not more than 90 days after original shipment by
Cisco).
TAC support Cisco will provide during business hours, 8 hours per day, 5 days per week, basic
configuration, diagnosis, and troubleshooting of device-level problems for up to a
90-day period from the date of shipment of the originally purchased Cisco Catalyst
9400 Series product. This support does not include solution or network-level
support beyond the specific device under consideration.
Cisco.com access Warranty allows guest access only to Cisco.com.
Cisco Services For Next-Generation Cisco Catalyst Switches
Achieve infrastructure excellence faster and with less risk. Cisco Catalyst 9K Services provide expert
guidance to help you successfully deploy, manage and support the new Catalyst 9K Series Switches.
With unmatched networking expertise, best practices and innovative tools, we can help you reduce
overall upgrade, refresh, and migration costs as you introduce new hardware, software and protocols
into the network. Offering a comprehensive lifecycle of services – from implementation, optimization,
technical and managed services – Cisco experts help you minimize disruption and achieve operational
excellence to extract maximum value from your DNA-ready infrastructure.
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 25
Software Policy For Cisco Catalyst 9400 Series Switches
Software policy for Network Stack components
Customers with Network Essential Stack and Network Advantage Stack software feature sets will be
provided with maintenance updates and bug fixes designed to maintain the compliance of the software
with published specifications, release notes, and industry standards compliance as long as the original
end user continues to own or use the product or up to one year from the end-of-sale date for this
product, whichever occurs earlier.
Embedded Support for Cisco DNA term components
Cisco Embedded Support delivers the right support for Cisco software products and suites. It will keep
your business applications performing as expected and protects your investment. Embedded Support
for Cisco DNA Essentials and Cisco DNA Advantage term components is included as part of the switch
value. Embedded Support provides access to TAC support, major software updates, maintenance and
minor software releases, and the Cisco Embedded Support site for increased productivity with anytime
access.
Ordering Information
Table 13. Cisco Catalyst 9400 Series ordering information
Product number Description
C9400-SUP-1(=) Cisco Catalyst 9400 Series Supervisor 1 Module
C9400-SUP-1/2 Cisco Catalyst 9400 Series Redundant Supervisor 1 Module
C9400-SSD-240GB Cisco Catalyst 9400 Series 240GB M2 SATA memory (Supervisor)
C9400-SSD-480GB Cisco Catalyst 9400 Series 480GB M2 SATA memory (Supervisor)
C9400-SSD-960GB Cisco Catalyst 9400 Series 960GB M2 SATA memory (Supervisor)
C9400-DNA-E Catalyst 9400 DNA Essentials Term license
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 26
C9400-DNA-E-3Y Catalyst 9400 DNA Essentials 3 Year Term license
C9400-DNA-E-5Y Catalyst 9400 DNA Essentials 5 Year Term license
C9400-DNA-E-7Y Catalyst 9400 DNA Essentials 7 Year Term license
C9400-DNA-A Catalyst 9400 DNA Advantage Term license
C9400-DNA-A-3Y Catalyst 9400 DNA Advantage 3 Year Term license
C9400-DNA-A-5Y Catalyst 9400 DNA Advantage 5 Year Term license
C9400-DNA-A-7Y Catalyst 9400 DNA Advantage 7 Year Term license
C9400-NW-E Cisco Catalyst 9400 Network Essential License
C9400-NW-A Cisco Catalyst 9400 Network Advantage License
C1A1TCAT94001
C9400 C1 Advantage Term: Includes Term Licenses for DNA Advantage, 100 ISE
Base & 100 ISE Plus Endpoints, 100 Stealthwatch Flows (including Virtual Flow
Collector & Management Console). Requires separate purchase of ISE
appliance/ISE VM and DNA Center appliance.
C1A1TCAT94001-3Y C9400 C1 Advantage 3Y Term - DNA, 100 ISE PLS and ISE BASE, 100 SWATCH
C1A1TCAT94001-5Y C9400 C1 Advantage 5Y Term - DNA, 100 ISE PLS and ISE BASE, 100 SWATCH
C1A1TCAT94001-7Y C9400 C1 Advantage 7Y Term - DNA, 100 ISE PLS and ISE BASE, 100 SWATCH
C1AA1TCAT94001
C9400 C1 Advantage Add-On Term: Includes Term Licenses for 50 ISE Base & 50 ISE
Plus Endpoints, 50 Stealthwatch Flows (including Virtual Flow Collector &
Management Console). Requires separate purchase of ISE appliance/ISE VM and
DNA Center appliance.
C1AA1TCAT94001-3Y C9400 C1 Advantage Add-On 3Y Term - 50 ISE PLS, 50 SWATCH
C1AA1TCAT94001-5Y C9400 C1 Advantage Add-On 5Y Term - 50 ISE PLS, 50 SWATCH
Copyright @ 2002-2018 Router-switch Ltd. | HongKong Yejian Technologies Co., Ltd | All Rights Reserved. 27
C1AA1TCAT94001-7Y C9400 C1 Advantage Add-On 7Y Term - 50 ISE PLS, 50 SWATCH
C9400-LIC= Electronic SW License for C9400 Switches
C9400-DNA-E-A C9400 NW & DNA Essentials to NW & DNA Advantage Upgrade
C9400-DNA-E-A-3 C9400 NW & DNA Ess to NW & DNA Adv Upgrade License (3Y)
C9400-DNA-E-A-5 C9400 NW & DNA Ess to NW & DNA Adv Upgrade License (5Y)
C9400-DNA-E-A-7 C9400 NW & DNA Ess to NW & DNA Adv Upgrade License (7Y)
Source
https://www.cisco.com/c/en/us/products/collateral/switches/catalyst-9400-series-
switches/datasheet-c78-739055.html